10/14/2094 15: 46 9723672088 



YEE & ASSOCIATES 



PAGE 



IN THE CLAIMS: 
1-18. (Canceled) 

19. (New) A method for retrieval of user passwords in a computer network, 
comprising: 

receiving, in a database server, a user identifier and user password from a client 
computing device via an application login; 

identifying an application associated with the application login; and 
identifying an application password, associated with the identified application and 
the user identifier, from a backend database associated with the database server, wherein 
the backend database stores entries for each of a plurality of registered users, and wherein 
the entries for the plurality of registered users include the user identifiers and application 
passwords for each application for whjch a user is registered, wherein at least one entry 
of the entries for each of the plurality of registered users has a plurality of different user 
identifiers and corresponding passwords, the plurality of different user identifiers and 
corresponding passwords comprising one user identifier and password for each 
application of a plurality of applications for which a user associated with the entry is 
registered, 

20. (New) The method of claim 19, wherein identifying the application password 
includes using a referral object that references a storage location in the backend database 
where the user identifiers and application passwords associated with the received user 
identifier are stored. 

21. (New) The method of claim 19, wherein the database server is a Lightweight 
Directory Access Protocol (LDAP) database server. 
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22. (New) The method of claim 19, further comprising: 

providing the application password and the user password to a security service, 
wherein the security service performs authentication based on the application password 
and the u$er password. 

23. (New) The method of claim 19, wherein the user identifier and user password arc 
encrypted by the client computing device and passed to a secure layer, and wherein the 
application associated with the application login is identified by the secure layer prior to 
transmission of the encrypted user identifier and user password to the database server. 

24. (New) The method of claim 19, wherein the entries for each of the plurality of 
users include one or more of the following attributes: a full name of the user attribute, a 
common name of the user attribute, a social security number of the user attribute, a serial 
number associated with the user attribute, an electi'onic mail address of the user attribute, 
a user identifier attribute, and a password attribute. 

25. (New) The method of claim 19, wherein the application password is a referral 
object that references a location in a central database where the user^s user identifiers and 
passwords for a plurality of applications arc stored. 

26. (New) A computer program product in a computer readable medium for retrieval, 
of user passwords in a computer network, comprising: 

instructions for neceiving, in a dalabase server, a user identifier and user password 
from a client computing device via an application login; 

instructions for identifying an application associated with the application login; 

and 

instructions for identifying an application password, associated with the identified 
application and the user identifier, from a backend database associated with the database 
server, wherein the backend database stores entries for each of a plurality of registered 
users, and wherein the entries for the plurality of registered users Include the user 
identifiers and application passwords for each application for which a user is registered. 
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wherein at least one entry of the entries for each of the plurality of registered iLsers has a 
plurahty of different user identifiers and corresponding passwords, the plurality of 
different user identifiers and corresponding passwords comprising one user identifier and 
password for each application of a plurality of applications for which a user associated 
with the entry is registered. 

27. (New) The computer program product of claim 26, wherein the instructions for 
identifying the application password include instructions for using a referral object that 
references a storage location in the backend database where the user identifiers and 
application passwords associated with the received user identifier axe stored, 

28. (New) The computer program product of claim 26, wherein the database server is 
a Lightweight Directory Access Protocol (LDAP) database server. 

29. (New) The computer program product of claim 26, further comprising: 
instructions for providing the application password and the user password to a 

security service, wherein the security service performs authentication based on the 
application password and the user password. 

30. (New) The computer program product of claim 26, wherein the user identifier 
and user password are encrypted by the client computing device and passed to a secure 
layer, and wherein the application associated with the application login is identified by 
the secure layer prior to transmission of the encrypted user identifier and user password 
to the database server. 

31. (New) The computer program product of claim 26, wherein the entries for each 
of the plurality of users include one or more of the following attributes: a full name of 
the user attribute, a common name of the user attribute, a social security number of the 
user attribute, a serial number associated with the user attribute, an electronic mail 
address of the user attribute, a user identifier attribute, and a password attribute. 
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32. (New) The computer program product of claim 26, wherein the application 
password is a referral object that references a location in a central database where the 
user's user identifiers and passwords for a plurality of applications are stored^ 

33. (New) A system for retrieval of user passwords in a computer network, 
comprising: 

a processor; 

a network interface coupled to the processor; and 

a backend database coupled to the processor, wherein the processor recei ves» via 
the network interface* a user identifier and user password from a client computing device 
via an apphcation login, identifies an application associated with the application login, 
and identifies an application password, associated with the identified application and the 
user identifier, from the backend database coupled to the processor, wherein the backend 
database stores entries for each of a plurality of registered users, and wherein the entries 
for the plurality of registered users include the user identifiers and application passwords 
for each application for which a user is registered, wherein at least one entry of the 
entries for each of the plurality of registered users has a plurality of different user 
identifiers and coiTesponding passwords, the plurality of diffemnt user identifiers and 
corresponding passwords comprising one user identifier and password for each 
application of a plurality of applications for which a user associated with the entry is 
registered. 

34. (New) The system of claim 33, wherein the processor identifies the application 
password by using a referral object that references a storage location in the backend 
database where the user identifiers and application passwords associated with the 
received user identifier are stored. 

35. (New) The system of claim 33, wherein the processor provides the application 
password and the user password to a security service, and wherein the security service 
performs authentication based on the application password and the user password. 
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36. (New) The system of claim 33, wherein the user identifier and user password are 
encrypted by the client computing device and passed to a secure layer» and wherein the 
application associated with the application login is identified by the secure layer prior to 
receipt of the encrypted user identifier and user password at the processor. 

37. (New) The system of claim 33» wherein the entries for each of the plurality of 
users include one or more of the following attributes: a full name of the user attribute, a 
common name of the user attribute, a social security number of the user attribute, a serial 
number associated with the user attribute, an electronic mail address of the user attribute, 
a user identifier attribute, and a password attribute. 

38. (New) The system of claim 33, wherein the application password is a referral 
object that references a location in a central database where the user's user identifiers and 
passwords for a plurality of applications are stored. 
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